| 基于Multi-Agent的网络入侵动态取证 |
| |
| 引用本文: | 张基温,蒋中云.基于Multi-Agent的网络入侵动态取证[J].计算机工程与设计,2006,27(11):2051-2053,2056. |
| |
| 作者姓名: | 张基温 蒋中云 |
| |
| 作者单位: | 江南大学,信息工程学院,江苏,无锡,214122 |
| |
| 摘 要: | 在分析计算机动态取证基本原理和Multi-Agent特点的基础上,将Multi-Agent技术应用到计算机取证中,提出了一种基于Multi-Agent的网络入侵动态取证系统结构.该系统在多种Agent的协同工作下能实时、准确和全面地收集入侵证据,再现入侵过程,从而克服了静态取证所存在的实时性差和证据收集困难等缺陷.
|
| 关 键 词: | 电子证据 计算机取证 网络入侵动态取证 |
| 文章编号: | 1000-7024(2006)11-2051-03 |
| 收稿时间: | 2005-04-22 |
| 修稿时间: | 2005-04-22 |
Dynamic forensics of network intrusion based on multi-agent |
| |
| ZHANG Ji-wen,JIANG Zhong-yun.Dynamic forensics of network intrusion based on multi-agent[J].Computer Engineering and Design,2006,27(11):2051-2053,2056. |
| |
| Authors: | ZHANG Ji-wen JIANG Zhong-yun |
| |
| Affiliation: | School of Information Engineering, Southern Yangtze University, Wuxi 214122, China |
| |
| Abstract: | The basic principle of dynamic computer forensics and the character of multi-agent are analysed. Applying the technique of multi-agent into computer forensics, a frame of dynamic forensics of network intrusion based on multi-agent is presented. This frame collect intrusion evidence real-timely, accurately and entirely, which cooperate with many kinds ofagents. And the intrusion processes is reappeared according to the real-time intrusion evidence. Therefore the limitations of static forensics are overcome, such as evidence collect difficultly, non-real-timely. |
| |
| Keywords: | Multi-Agent JATLite |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
